Openwall GNU/*/Linux - a small security-enhanced Linux distro for servers
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Date: Mon, 13 May 2013 10:48:59 -0400
From:  <jfoug@....net>
To: john-dev@...ts.openwall.com
Subject: Re: Dyna and OpenSSL <1.0.0

I still want to put more crypts into dyna, but for now, this handles this problem with whirlpool.

Added to dyna are sph_whirlpool and sph_tiger.

Dyna has been chopped up some. I moved all of the 'large' crypts into their own source file. They are pretty much cookie cutter code at the moment.

I also updated the docs, and pass_gen.pl.  pass_gen.pl now has all builtin-dynamic's built into it, and easier to use.  I also added Digest::Tiger and Digest::Haval.  There will be some concern with Haval.  perl only handles 5 round 256 bit. But there are 15 different haval functions (3 different round counts, and 5 different sizes).  I really do not like adding to dynamic, if I can not cross validate the test cases with pass_gen.  I will have to come up with some other tool to do this crypt.

The bleeding patch is the main code.  The memdbg patch only adds the memdbg.h to the dyna_big_crypt.c file.  It will only get added to the memdbg git tree.

Jim.

---- jfoug@....net wrote: 
> This will 'soon' be fixed (bleeding JtR).  I am adding several large hash crypts to dyna, including sph_whirlpool for builds of oSSL < 1.00
> 
> Jim.
> 
> ---- Alexander Cherepanov <cherepan@...me.ru> wrote: 
> > Hi!
> > 
> > Right now dynamic_1030 fails selftest in bleeding on a machine with 
> > Debian oldstable (openssl 0.9.8o):
> > 
> > $ ../run/john --test=0 --format=dynamic_1030
> > Error, unknown function: 
> > Func=DynamicFunc__WHIRLPOOL_crypt_input1_to_output1_FINAL
> > Error parsing section [List.Generic:dynamic_1030]
> > Error in line 487 file is ../run/dynamic.conf
> > Warning: doing quick benchmarking - the performance numbers will be 
> > inaccurate
> > Benchmarking: dynamic_1030, dynamic_1030 Whirlpool($pass) (first 32 
> > bytes) [32/64 64x2 (MD5_body)]... FAILED (get_hash[0](0))
> > 
> > It's explained by the following comment in dynamic.h:
> > 
> >   * Added SHA2 (SHA224, SHA256, SHA384, SHA512), GOST, Whirlpool crypt 
> > types.
> >   * Whirlpool only if OPENSSL_VERSION_NUMBER >= 0x10000000
> > 
> > But is it supposed to always fail selftest when OPENSSL_VERSION_NUMBER < 
> > 0x10000000 or it will somehow turn such formats off?
> > 
> > -- 
> > Alexander Cherepanov
> 

Download attachment "JtR-bleeding-Dyna-add-SPH-Tiger_Whirlpool.patch" of type "application/octet-stream" (182699 bytes)

Download attachment "JtR-memdbg-Dyna-add-SPH-Tiger_Whirlpool.patch" of type "application/octet-stream" (349 bytes)

Powered by blists - more mailing lists

Your e-mail address:

Powered by Openwall GNU/*/Linux - Powered by OpenVZ